Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PM 2048 Update Two Factor Options dialog #8565

Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

PM 2048 Update Two Factor Options dialog #8565

wants to merge 3 commits into from
+83 −83

Conversation

KiruthigaManivannan
Copy link
Collaborator

@KiruthigaManivannan KiruthigaManivannan commented Apr 1, 2024
edited

Type of change

- [ ] Bug fix
- [ ] New feature development
- [ ] Tech debt (refactoring, code cleanup, dependency upgrades, etc)
- [ ] Build/deploy pipeline (DevOps)
- [x] Other

Objective

Update the Two Factor Options component to use the component library.

Code changes

  • two-factor-options.component.html: Updated modal to use bit-dialog from component library
  • two-factor-options.component.ts Dialog open method logic implemented
  • two-factor.component.ts During Another method link click , Two factor options dialog open called.
  • two-factor.component.html Removed ng-template

Screenshots

2048-Twofactoroptions.mp4

@KiruthigaManivannan KiruthigaManivannan requested a review from a team as a code owner April 1, 2024 12:43
@github-actions github-actions bot added the needs-qa Marks a PR as requiring QA approval label Apr 1, 2024
@codecov Codecov
Copy link

codecov bot commented Apr 1, 2024

Codecov Report

Attention: Patch coverage is 36.84211% with 12 lines in your changes are missing coverage. Please review.

Project coverage is 26.80%. Comparing base (2e51d96) to head (a3d0333).

Files Patch % Lines
...s/web/src/app/auth/two-factor-options.component.ts 40.00% 6 Missing ⚠️
apps/web/src/app/auth/two-factor.component.ts 33.33% 5 Missing and 1 partial ⚠️
Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #8565   +/-   ##
=======================================
  Coverage   26.80%   26.80%           
=======================================
  Files        2308     2308           
  Lines       67393    67405   +12     
  Branches    12630    12633    +3     
=======================================
+ Hits        18063    18069    +6     
- Misses      47940    47944    +4     
- Partials     1390     1392    +2

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Apr 1, 2024

Logo
Checkmarx One – Scan Summary & Details13f7af4e-dff5-4e85-a54a-3b9c0b7a4e34

New Issues

Severity Issue Source File / Package Checkmarx Insight
HIGH Client_DOM_Code_Injection /apps/web/src/connectors/common.ts: 2 Attack Vector
HIGH Client_DOM_XSS /apps/browser/src/auth/scripts/duo.js: 285 Attack Vector
HIGH Client_DOM_XSS /apps/desktop/src/auth/scripts/duo.js: 285 Attack Vector

Fixed Issues

Severity Issue Source File / Package
HIGH Client_DOM_Code_Injection /apps/browser/src/autofill/services/collect-autofill-content.service.ts: 1051
HIGH Client_DOM_Stored_XSS /apps/web/src/connectors/sso.ts: 33
HIGH Client_DOM_XSS /apps/web/src/connectors/common.ts: 2
HIGH Client_DOM_XSS /apps/web/src/connectors/common.ts: 2
HIGH Client_DOM_XSS /apps/web/src/connectors/common.ts: 2
HIGH Client_DOM_XSS /apps/web/src/connectors/common.ts: 2
HIGH Client_DOM_XSS /apps/web/src/connectors/sso.ts: 21
HIGH Client_DOM_XSS /apps/web/src/connectors/sso.ts: 19
HIGH Client_DOM_XSS /apps/web/src/connectors/sso.ts: 15
HIGH Client_DOM_XSS /apps/web/src/app/auth/settings/two-factor-verify.component.html: 3
HIGH Client_DOM_XSS /bitwarden_license/bit-web/src/app/admin-console/providers/settings/account.component.html: 27
HIGH Client_DOM_XSS /bitwarden_license/bit-web/src/app/admin-console/providers/settings/account.component.html: 27
MEDIUM Absolute_Path_Traversal /apps/cli/src/commands/serve.command.ts: 309
MEDIUM Absolute_Path_Traversal /apps/cli/src/commands/serve.command.ts: 341
MEDIUM Absolute_Path_Traversal /apps/cli/src/commands/serve.command.ts: 341
MEDIUM Absolute_Path_Traversal /apps/cli/src/commands/serve.command.ts: 309
MEDIUM Angular_Improper_Type_Pipe_Usage /apps/browser/src/vault/popup/components/fido2/fido2-use-browser-link.component.html: 1
MEDIUM Angular_Improper_Type_Pipe_Usage /apps/web/src/app/billing/shared/adjust-storage.component.html: 27
MEDIUM Angular_Improper_Type_Pipe_Usage /apps/web/src/app/billing/organizations/adjust-subscription.component.html: 54
MEDIUM Angular_Improper_Type_Pipe_Usage /apps/web/src/app/billing/organizations/adjust-subscription.component.html: 18
MEDIUM Client_Potential_XSS /apps/desktop/src/app/components/avatar.component.ts: 45
MEDIUM Client_Potential_XSS /libs/components/src/avatar/avatar.component.ts: 48
MEDIUM Client_Potential_XSS /apps/desktop/src/app/components/avatar.component.ts: 45
MEDIUM Client_Privacy_Violation /apps/browser/src/background/runtime.background.ts: 331
MEDIUM Client_Privacy_Violation /apps/web/src/app/tools/reports/pages/breach-report.component.html: 14
MEDIUM Client_Privacy_Violation /apps/browser/src/auth/popup/account-switching/account.component.ts: 12
MEDIUM Client_Privacy_Violation /apps/browser/src/auth/popup/account-switching/account.component.ts: 12
MEDIUM Client_Privacy_Violation /apps/browser/src/auth/popup/account-switching/account.component.ts: 12
MEDIUM Client_Privacy_Violation /apps/web/src/app/auth/settings/two-factor-verify.component.html: 3
MEDIUM Client_Privacy_Violation /libs/components/src/color-password/color-password.component.ts: 25
MEDIUM Client_Privacy_Violation /libs/components/src/color-password/color-password.component.ts: 26
MEDIUM Client_Privacy_Violation /apps/desktop/src/auth/lock.component.html: 32
MEDIUM Client_Privacy_Violation /apps/web/src/app/auth/lock.component.html: 18
MEDIUM Client_Privacy_Violation /apps/web/src/app/billing/shared/add-credit.component.ts: 30
MEDIUM Client_Privacy_Violation /apps/web/src/app/billing/shared/add-credit.component.ts: 146
MEDIUM Client_Privacy_Violation /apps/web/src/app/billing/shared/add-credit.component.ts: 70
MEDIUM Client_Privacy_Violation /apps/web/src/app/billing/shared/add-credit.component.ts: 80
MEDIUM Client_Privacy_Violation /apps/web/src/app/billing/shared/add-credit.component.ts: 135
MEDIUM Client_Privacy_Violation /bitwarden_license/bit-web/src/app/auth/sso/sso.component.ts: 161
MEDIUM Client_Privacy_Violation /bitwarden_license/bit-web/src/app/auth/sso/sso.component.ts: 161
MEDIUM Client_Privacy_Violation /apps/web/src/connectors/webauthn-fallback.ts: 116
MEDIUM Client_Privacy_Violation /apps/desktop/src/vault/app/vault/view.component.html: 534
MEDIUM Client_Privacy_Violation /apps/web/src/app/billing/shared/add-credit.component.html: 46
MEDIUM Client_Privacy_Violation /apps/web/src/app/auth/recover-two-factor.component.html: 37
MEDIUM Client_Privacy_Violation /apps/desktop/src/auth/lock.component.html: 32
MEDIUM Client_Privacy_Violation /apps/web/src/app/auth/lock.component.html: 18
MEDIUM Client_Privacy_Violation /libs/components/src/color-password/color-password.component.ts: 14
MEDIUM Client_Privacy_Violation /apps/desktop/src/vault/app/vault/view.component.html: 60
MEDIUM Client_Privacy_Violation /apps/desktop/src/vault/app/vault/view.component.html: 56
MEDIUM Client_Privacy_Violation /apps/browser/src/tools/popup/generator/password-generator-history.component.html: 26
MEDIUM Client_Privacy_Violation /apps/browser/src/vault/popup/components/vault/password-history.component.html: 18
MEDIUM Client_Privacy_Violation /apps/desktop/src/app/tools/password-generator-history.component.html: 15
MEDIUM Client_Privacy_Violation /apps/desktop/src/vault/app/vault/password-history.component.html: 12
MEDIUM Client_Privacy_Violation /apps/desktop/src/vault/app/vault/view.component.html: 50
MEDIUM Client_Privacy_Violation /libs/components/src/color-password/color-password.component.ts: 14
MEDIUM Client_Privacy_Violation /apps/browser/src/tools/popup/generator/password-generator-history.component.html: 26
MEDIUM Client_Privacy_Violation /apps/browser/src/vault/popup/components/vault/password-history.component.html: 18
MEDIUM Client_Privacy_Violation /apps/desktop/src/app/tools/password-generator-history.component.html: 15
MEDIUM Client_Privacy_Violation /apps/desktop/src/vault/app/vault/password-history.component.html: 12
MEDIUM Host Namespace is Shared /docker-compose.yml: 4
MEDIUM Missing_HSTS_Header /apps/cli/src/auth/commands/login.command.ts: 705
MEDIUM Networks Not Set /docker-compose.yml: 4
MEDIUM SSRF /libs/importer/src/importers/lastpass/access/services/rest-client.ts: 69
MEDIUM SSRF /libs/importer/src/importers/lastpass/access/services/rest-client.ts: 69
LOW Angular_Usage_of_Unsafe_DOM_Sanitizer /libs/components/src/avatar/avatar.component.ts: 80
LOW Angular_Usage_of_Unsafe_DOM_Sanitizer /apps/desktop/src/app/components/avatar.component.ts: 75
LOW Angular_Usage_of_Unsafe_DOM_Sanitizer /libs/components/src/icon/icon.component.ts: 18
LOW Angular_Usage_of_Unsafe_DOM_Sanitizer /libs/components/src/icon/icon.component.ts: 18
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/accessibility-cookie.component.html: 18
LOW Client_DOM_Open_Redirect /apps/web/src/connectors/common.ts: 2
LOW Client_DOM_Open_Redirect /apps/web/src/connectors/common.ts: 2
LOW Client_DOM_Open_Redirect /apps/web/src/connectors/common.ts: 2
LOW Client_DOM_Open_Redirect /apps/web/src/connectors/sso.ts: 21
LOW Client_DOM_Open_Redirect /apps/web/src/connectors/common.ts: 2
LOW Client_DOM_Open_Redirect /apps/web/src/connectors/sso.ts: 19
LOW Client_DOM_Open_Redirect /apps/web/src/connectors/common.ts: 2
LOW Client_DOM_Open_Redirect /apps/web/src/connectors/sso.ts: 15
LOW Client_DOM_Open_Redirect /apps/browser/src/tools/popup/generator/password-generator-history.component.ts: 18
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/popup/account-switching/current-account.component.ts: 30
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/popup/login-via-auth-request.component.ts: 52
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/popup/login-via-auth-request.component.ts: 52
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/login/login-via-auth-request.component.ts: 60
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/login/login-via-auth-request.component.ts: 60
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/popup/login-via-auth-request.component.ts: 52
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/popup/login-via-auth-request.component.ts: 52
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/login/login-via-auth-request.component.ts: 60
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/login/login-via-auth-request.component.ts: 60
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/popup/account-switching/account.component.ts: 25
LOW Client_DOM_Open_Redirect /apps/browser/src/vault/popup/components/vault/password-history.component.ts: 21
LOW Client_DOM_Open_Redirect /apps/browser/src/vault/popup/components/vault/attachments.component.ts: 32
LOW Client_DOM_Open_Redirect /apps/browser/src/popup/settings/premium.component.ts: 27
LOW Client_DOM_Open_Redirect /libs/common/src/auth/iframe-component.ts: 49
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /libs/common/src/auth/webauthn-iframe.ts: 25
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /libs/common/src/auth/webauthn-iframe.ts: 25
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/desktop/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/scripts/duo.js: 277
LOW Client_DOM_Open_Redirect /apps/browser/src/auth/scripts/duo.js: 277
LOW Client_Hardcoded_Domain /apps/web/src/app/billing/shared/payment.component.ts: 56
LOW Client_Hardcoded_Domain /apps/web/src/app/billing/shared/payment.component.ts: 56
LOW Client_Hardcoded_Domain /apps/web/src/connectors/captcha.ts: 57
LOW Client_Password_In_Comment /libs/angular/src/vault/components/add-edit.component.ts: 663
LOW Client_Password_In_Comment /apps/web/src/app/vault/org-vault/add-edit.component.ts: 108
LOW Client_Password_In_Comment /apps/web/src/app/vault/org-vault/collections.component.ts: 45
LOW Client_Password_In_Comment /libs/angular/src/platform/utils/safe-provider.ts: 92
LOW Client_Password_In_Comment /libs/common/src/state-migrations/migrations/30-move-policy-state-to-state-provider.ts: 13
LOW Client_Password_In_Comment /apps/browser/src/autofill/background/notification.background.ts: 555
LOW Client_Password_In_Comment /libs/common/src/services/event/event-collection.service.ts: 93
LOW Client_Password_In_Comment /libs/common/src/services/event/event-collection.service.ts: 88
LOW Client_Password_In_Comment /libs/common/src/platform/biometrics/biometric-state.service.ts: 62
LOW Client_Password_In_Comment /libs/common/src/platform/biometrics/biometric-state.service.ts: 30
LOW Client_Password_In_Comment /apps/web/src/app/auth/key-rotation/user-key-rotation.service.ts: 42
LOW Client_Password_In_Comment /apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 418
LOW Client_Password_In_Comment /apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 342
LOW Client_Password_In_Comment /apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 342
LOW Client_Password_In_Comment /apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 389
LOW Client_Password_In_Comment /apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 321
LOW Client_Password_In_Comment /apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 321
LOW Client_Password_In_Comment /apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 276
LOW Client_Password_In_Comment /apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 248
LOW Client_Password_In_Comment /apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 439
LOW Client_Password_In_Comment /apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 457
LOW Client_Password_In_Comment /apps/browser/src/autofill/overlay/pages/list/autofill-overlay-list.ts: 226
LOW Client_Password_In_Comment /apps/browser/src/autofill/background/overlay.background.ts: 516
LOW Client_Password_In_Comment /apps/browser/src/autofill/background/overlay.background.ts: 516
LOW Client_Password_In_Comment /apps/browser/src/autofill/background/overlay.background.ts: 227
LOW Client_Password_In_Comment /apps/browser/src/autofill/background/overlay.background.ts: 227
LOW

More results are available on AST platform

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ike-kottlowski ike-kottlowski Awaiting requested review from ike-kottlowski ike-kottlowski is a code owner automatically assigned from bitwarden/team-auth-dev

@willmartian willmartian Awaiting requested review from willmartian

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
needs-qa Marks a PR as requiring QA approval
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@KiruthigaManivannan